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1. A method yror executing secure data transfer- 
between a communication device and an application 

erver irS-j- , wherein data are transferred over a network 
-f2j^34~ between t£e application server (-5-) and the communica- 
tion device i r zJf--t3rG%^^ 



sending an agreement proposal for a secure transac- 
tion of data from the server ttt to a security adapter 
10 connected t/o the network -f^/3i — e9-eav3-&4»^3-9£^0^4-^^ 

creating and sending a message from the security 
adapter to the communication device 4i4- in order to 

activate/ a signing application 
(307,3 0yu / 30g,310,40G,40C.407,400) , 
15 the signing application signing the data to be send 

(311, /l2, 100, 310) , 

sending the signed data from the communication device 
Hrf /to the security adapter ~(C ->- (313 j f 

verifying the signature . fc3- 1 4 ; 4 12> for the data, and 
20 V sending the verified signed data to the server for 
execution of the transaction »f a 15^ ^19-} . 



jJ^fczUj*-*^ 2 ' A method Recording to claim 1, .efeax-a 



u tmi -sed in 



t Jfefcerfc information 



25 



rowsing on the server 4 5) -' is initiated 
from either the application server or the communication 

device f±-^, whearein data are transferred over the network 
+2y3% v between the application server (S - fr and the communica- 
tion device 0 1) . ' ( 3 Q 1 i&teytr&lnjktt^. 



^o^^^^^^^^^ethod according to cl< 



aim 1 &r — V^ ar a q fc or i o o d 
by, before the step of sending an agreement proposal, the 
further /step of : 

ending a request requiring a secure transaction of 
data, Neither from the communication device Hr^'co the 
35 application server 4-£4 :::: -t3-e-3>*o^~;' or from the application 
server - ( - 5 - ) - ^ to the communication ddviee4WV 
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4. A method/ according tetan y - r vE . th e g r o c c d ing-clgtims, 



•chagft btorio o d- 



lapt 



the step of sending a message from 
er to the communication device -farf in 



the security ae 

order to activate a signing application further comprises 
the steps oi 

details of the transaction to be secured and 
into at least one message -t-a-O-S-jyfc-e-^)- , 
the at least one message from the security 
a smart card in the communication device - fr l )— 
the signing application *3-e^4^H-, 
playing the details of the transaction and a 
accept on the communication device 

hod according to ^any of tho preceding olaimo , 
in that *' the step of signing the data further 
step of; 

ing the transaction (311 & r*e-9-f # the signing 
igning the data to be send with a 

key by using an algorithm ^a^r2v«^1 - 

hod according to ^ny of tho proocding olaimo? 
— in that the step of sending an agreement 
comprises the further step of ; 

the agreement proposal for the secure trans - 
the server J^r) to the communication device 
eptance — (305) before the agreement proposal is 
curity adapter 464^ ~(4-d«}-. 

thod according tet any of th e claims — 4— e \y char^ 
e smart card is a SIM card (subscriber 
identity module) . the data transfer protocol is the WAP 
. (Wireless Application Protocol) , the signing application is 
35 a SAT (SIM Application Toolkit) application, the commurtica- 




• ... • 
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tion application is a WAP application, and the message is 
at least an SMS/ or USSD packet , 



s6L*$&t&2sv{ 8 - A metftod according to claim 7, 



fehat - A the WAP 



^plication in the communication device is 
suspended or terminated when the SAT application is activ- 
ated 



. A systeto for executing secure data transfer be- 
'jo tween a communidation device <f3D- and ap. application server 
ir&l' over a wireless network 42-^^3^-^^ — fey a 
security adapter connected to the network *+2-*ai — for 

monitoring the /data transfer between the communication 
device ^nd / the application server -fS+ / wherein 

15 said serirer is adapted to send an agreement pro- 

posal for a secure transaction of data to the security 
adapter 4^4 . 

said sefcurity adapter T^i- is adapted to receive said 
agreement proposal for a secure transaction from the server 
20 «f5-^< , and create and send a message to the communication 
device '(! ■}■ nor activating a signing application, 

said communication device ( !) ■■ is adapted to sign the 
data, and snsnd the signed data to the security adapter 

said /security adapter -<-64- is adapted to receive, and 
25 send the srigned data for verification and then send the 
verified Signed data to the application server Jr&$ for 
execution of the transaction. 



system according to claim 3, charao t or i pod - 

secret/ 



-ana- 



30 that said communication device f-3r)~ comprises a 

A T 

private key, an algorithm for signing of data, and a sign- 



ing applic 
signing 



it ion for handling a signing dialogue and the 
data. 
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jUjA^I^^ 11 * A systefo according to claim 10 ^ebewM^e^ireed fc» 

^ ^-fefea^ said secret/ private key, said algorithm, and said 

signing application is stored on a smart card such as a SIM 
card (subscribe^ identity module), the data transfer proto- 
5 col is the WAP iwireless Application Protocol), the signing 
application is L SAT (SIM Application Toolkit) application, 
and the messagf is at least an SMS or USSD packet. 

12 . A qms tern according tetany of tfaa-claims 9-lil, 
arafftoriood / — in that said network comprises a mobile 
telephone network -f34 for connection to the communication 
device farK tfhe Internet tS+ for the connection to the 
application Server -+5-K and a WAP gateway 444- connecting 
the mobile telephone network 4s-h to the Internet -43^. 



6 



4 
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sjyetem according to claim 12, -chnrnefeiMMysed iaa 
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A that said security adapter is connected to the WAP 

gateway 44-}- - 

14. A system according to any of tho claim^ 9- 12 , 
charactegiaeH in that said security adapter is 
connected td the application server ( 5 ) ■■ > 
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^*$g%g#f/l/ 15 • ^ system according to . any of tho claimpi 9 

- 5 /y oha;racfcori.acd in that said communication device is a 

mobile phone -tori or a portable computer having transmitting 
/receiving? capability. 



tsU^QjTpJsvt 16,/ A system according to claim 15, cb ayao tori ood — i&- 
30^ tehat - the /mobile phone comprises means for displaying a 

particular icon, character, font, or colour connected to 
certain /applications or the operating system in the phone, 
wherein/ the user can be assured that he is really communi- 
cating Hirectly with the security application, 

35 



17, A security adapter for connection to a witless 
network Jr^r^ fpr monitoring the data transfer between a 
communication device ijbjk ar j3, < an application server 4rS) 
connected to the network ^oha-t^ctoriood by. 

means far receiving an agreement proposal for a 
secure transaction from the communication device (1) , 

means ffor creating and sending a message to the com- 
munication device (l) in order to activate a signing appli- 
cation, 

means /for receiving signed data send from the com- 
munication device (1) , and 

means for sending the signed data for verification 
and then t/o the application server (5) for execution of the 
transaction. 



18 , A computer program product directly loadable into 
the internal memory of ^JPPS^^Y adapter with digital 

computer capabilities ^ qharactoripod by comprising software 
code portions for performing the steps of: 

receiving an agreement proposal for a secure transac- 
tion from a communication device 4l) , 

creating and sending a message to the communication 
device /-Hr)- in order to activate a signing application, 

receiving signed data send from the communication de- 
vice and 

(sending the signed data for verification and then to 
an application server -t5f - for execution of the transaction. 



19. A computer program element comprising computer 
program code means to make a security adapter i& ? with 
digi/tal computer capabilities execute the steps of: 

receiving an agreement proposal for a secure transac- 
ticjh from a communication device f -1 )" , 

creating and sending a message to the communication 
device -fSrh in order to activate a signing application, 
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receiving signed data send from the communication 
device ttrh,/ and 

sending the signed data fox verification and then to 
an application server for execution of the transaction. 

20. A Computer program element as claimed in claim 19 
embodied on/a computer readable medium- 



